$ rpki-client -vvf repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft File: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft (raw, json) Hash identifier: tm9wkQPVsJF7KFWlLpLg0GWQq20kmnhKQJWdTfVWhyI= Subject key identifier: 19:63:1D:93:04:31:5D:62:83:E6:87:67:EE:D0:51:D2:05:91:4D:32 Authority key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 Certificate issuer: /CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Certificate serial: 71F5024CA6BB0F6713C704765051C31A80FDD259 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft Manifest number: 02F8 Signing time: Sun 19 Oct 2025 07:00:52 +0000 Manifest this update: Sun 19 Oct 2025 06:55:52 +0000 Manifest next update: Wed 22 Oct 2025 14:54:52 +0000 Files and hashes: 1: 3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa (hash: ta8cyJGAuX8M5px06fD7ixeqP65bXdztJIzRgtjjUTw=) 2: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl (hash: BUgHC1OIVcA6rPs/z1L7j4t9GoB6NA5/9kOW2DY7gk4=) 3: 3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa (hash: SaglbTs2Sm97iqGUTpHLhK4uFUxx2JxCBReDItgEQOA=) 4: 3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa (hash: uFvJDDnE+LzWscDNPWULjpdUKOX2mvB/YxTyjJbL490=) 5: 323030313a6466303a313730303a3a2f34382d3438203d3e20313336303730.roa (hash: DZhIHh+Q1/lFglHPCtQYtJARiOU+Khz/cuUC8LvdiAk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 14:54:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:f5:02:4c:a6:bb:0f:67:13:c7:04:76:50:51:c3:1a:80:fd:d2:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Validity Not Before: Oct 19 06:55:52 2025 GMT Not After : Oct 22 14:54:52 2025 GMT Subject: CN=19631D9304315D6283E68767EED051D205914D32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:34:88:24:07:7b:7b:a8:6a:66:a5:79:f8:04: 3b:34:d9:2f:8d:f5:72:cd:43:9a:f3:40:eb:6a:58: 90:06:e0:f0:cc:7c:e1:8d:ef:09:45:02:c1:b4:d4: 3a:a1:9e:13:80:a1:22:97:54:ff:75:dd:08:23:9e: 49:41:bc:1d:51:f8:3a:58:9b:94:53:71:1a:72:e3: 9e:0b:4a:eb:0c:75:24:75:3f:43:38:dd:de:dd:a1: 5f:04:9d:d7:ba:5f:ad:95:d0:c9:6b:ba:2b:b5:2a: 05:36:27:95:27:41:2b:cc:14:4e:97:d2:01:88:e4: 2e:f0:77:5a:61:58:68:3a:c7:e7:af:55:8d:ef:60: 14:52:b3:66:fc:f1:77:30:4d:0a:35:0a:7d:9d:ec: d9:e3:df:8c:97:c6:89:10:0c:57:dc:32:65:98:fe: c2:4b:f5:4f:01:dd:f2:c7:fb:46:6f:73:68:b2:28: 49:56:78:d0:ab:5d:26:24:da:dd:7a:df:69:ba:da: 82:48:06:b1:20:45:fa:25:b5:2c:80:db:d0:ed:2a: 39:dd:cd:51:22:90:90:6f:7e:3f:15:20:9e:2d:1c: a0:57:25:69:7c:1b:31:da:43:af:fd:ad:a8:8f:1f: 8d:14:65:4e:e4:59:67:d4:ba:16:3a:8d:9c:84:a3: ec:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:63:1D:93:04:31:5D:62:83:E6:87:67:EE:D0:51:D2:05:91:4D:32 X509v3 Authority Key Identifier: keyid:A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:84:f2:d1:02:20:84:5d:b9:34:9f:16:b1:d4:b6:70:33:35: 40:48:c0:f7:f1:71:b4:21:e7:dd:9b:88:bd:22:c5:13:c7:7d: 66:3b:fe:ee:72:c7:5d:3c:64:94:ad:44:a4:d0:26:e7:22:9f: 99:9e:14:86:13:2d:8a:0b:a2:10:59:ca:1d:7d:be:f1:f7:9c: 11:c7:71:6e:cb:0b:cd:05:b9:41:f4:8e:81:89:b8:de:3e:e6: 6d:5a:2b:4d:48:ae:81:29:ff:cd:5a:e7:05:ef:bb:82:c1:0e: 19:26:a1:ad:64:29:58:0c:45:71:ba:1c:5c:3c:42:d0:83:22: c2:4d:5d:09:f1:d2:15:39:dc:13:95:33:60:fe:8a:09:09:c5: ff:e9:c4:f7:a8:17:34:eb:5d:f6:9f:35:78:21:47:9e:ed:1a: 78:ab:9b:46:a1:34:4a:cf:28:19:28:f1:6c:89:73:84:8c:0f: 44:66:59:75:63:d1:84:f5:a0:ca:8e:74:d2:35:29:be:5e:cb: 1b:14:2d:54:de:0a:d6:d7:b9:d1:fa:b8:ff:e4:8a:fb:46:1f: 3b:1a:e3:7d:03:9d:13:4c:0e:ea:3b:8e:7e:1e:32:a1:8a:11: 8f:47:94:ea:c9:db:9c:c3:e1:ec:28:52:43:db:51:45:16:77: d2:f6:f9:e4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcfUCTKa7D2cTxwR2UFHDGoD90lkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2 RjNGRTBCMzAeFw0yNTEwMTkwNjU1NTJaFw0yNTEwMjIxNDU0NTJaMDMxMTAvBgNV BAMTKDE5NjMxRDkzMDQzMTVENjI4M0U2ODc2N0VFRDA1MUQyMDU5MTREMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4NIgkB3t7qGpmpXn4BDs02S+N 9XLNQ5rzQOtqWJAG4PDMfOGN7wlFAsG01DqhnhOAoSKXVP913QgjnklBvB1R+DpY m5RTcRpy454LSusMdSR1P0M43d7doV8Ende6X62V0Mlruiu1KgU2J5UnQSvMFE6X 0gGI5C7wd1phWGg6x+evVY3vYBRSs2b88XcwTQo1Cn2d7Nnj34yXxokQDFfcMmWY /sJL9U8B3fLH+0Zvc2iyKElWeNCrXSYk2t1632m62oJIBrEgRfoltSyA29DtKjnd zVEikJBvfj8VIJ4tHKBXJWl8GzHaQ6/9raiPH40UZU7kWWfUuhY6jZyEo+xNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUGWMdkwQxXWKD5odn7tBR0gWRTTIwHwYDVR0j BBgwFoAUoKKlyowgp89toTJcm9XDN28/4LMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMC9BMEEyQTVDQThD MjBBN0NGNkRBMTMyNUM5QkQ1QzMzNzZGM0ZFMEIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2RjNG RTBCMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGYzNzc3MTEtMWUzZC00ZTVhLWE0 YWMtMDVhMWM1MDJhZDI4LzAvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMz Mzc2RjNGRTBCMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJqE8tECIIRduTSfFrHUtnAzNUBIwPfxcbQh 592biL0ixRPHfWY7/u5yx108ZJStRKTQJucin5meFIYTLYoLohBZyh19vvH3nBHH cW7LC80FuUH0joGJuN4+5m1aK01IroEp/81a5wXvu4LBDhkmoa1kKVgMRXG6HFw8 QtCDIsJNXQnx0hU53BOVM2D+igkJxf/pxPeoFzTrXfafNXghR57tGnirm0ahNErP KBko8WyJc4SMD0RmWXVj0YT1oMqOdNI1Kb5eyxsULVTeCtbXudH6uP/kivtGHzsa 430DnRNMDuo7jn4eMqGKEY9HlOrJ25zD4ewoUkPbUUUWd9L2+eQ= -----END CERTIFICATE-----Generated at Mon Oct 20 10:39:19 2025 by rpki-client